๐ซ๐ท
dynamix
2026-07-17 02:44:30
(2 hours ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-07-17 01:50:17
(3 hours ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-17 01:21:20
(3 hours ago)
Fail2Ban: WordPress XML-RPC brute-force attack detected.
Bad Web Bot
Web App Attack
๐ซ๐ท
Kenshin869
2026-07-17 00:27:02
(4 hours ago)
Wordpress unauthorized access attempt
Brute-Force
Anonymous
2026-07-16 06:36:24
(22 hours ago)
[redacted] 182.11.129.215 - - [16/Jul/2026:08:35:40 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" " ...
show more
[redacted] 182.11.129.215 - - [16/Jul/2026:08:35:40 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 182.11.129.215 - - [16/Jul/2026:08:35:51 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 182.11.129.215 - - [16/Jul/2026:08:36:01 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com"
[redacted] 182.11.129.215 - - [16/Jul/2026:08:36:12 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com"
[redacted] 182.11.129.215 - - [16/Jul/2026:08:36:23 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.4)"
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 05:37:09
(1 day ago)
(mod_security) mod_security (id:240335) triggered by 182.11.129.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 182.11.129.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 01:37:06.089613 2026] [security2:error] [pid 5922:tid 5922] [client 182.11.129.215:18833] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 182.11.129.215 (+1 hits since last alert)|frogdesignmexico.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "frogdesignmexico.com"] [uri "/xmlrpc.php"] [unique_id "alccgvUVgTofmA3bbx6pdgAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-15 03:19:53
(2 days ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
Anonymous
2026-07-14 14:57:03
(2 days ago)
Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1
Hacking
Web App Attack
Anonymous
2026-07-14 09:54:44
(2 days ago)
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 06:57:43
(2 days ago)
(mod_security) mod_security (id:240335) triggered by 182.11.129.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 182.11.129.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 02:57:37.825953 2026] [security2:error] [pid 32554:tid 32554] [client 182.11.129.215:31734] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 182.11.129.215 (+1 hits since last alert)|braintechsoftwaresolutions.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "braintechsoftwaresolutions.com"] [uri "/xmlrpc.php"] [unique_id "alXd4SJVo6075kkb_LM6YwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
IndigoRidge
2026-07-12 11:12:33
(4 days ago)
182.11.129.215 - - [12/Jul/2026:07:11:07 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5564 "-" "WordPress. ...
show more
182.11.129.215 - - [12/Jul/2026:07:11:07 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5564 "-" "WordPress.com; https://wordpress.com"
182.11.129.215 - - [12/Jul/2026:07:11:39 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5564 "-" "WordPress.com; https://wordpress.com"
182.11.129.215 - - [12/Jul/2026:07:11:49 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5564 "-" "WordPress.com; https://wordpress.com"
182.11.129.215 - - [12/Jul/2026:07:12:22 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5564 "-" "WordPress.com; https://wordpress.com"
182.11.129.215 - - [12/Jul/2026:07:12:32 -0400] "POST /xmlrpc.php HTTP/1.0" 403 5564 "-" "WordPress.com; https://wordpress.com"
...
show less
Web App Attack
Anonymous
2026-07-12 08:37:37
(4 days ago)
[ns31.kdns.gr] httpd-xmlrpc-post: sites=www.savouras.gr; logs=/var/log/httpd/domains/savouras.gr.log ...
show more
[ns31.kdns.gr] httpd-xmlrpc-post: sites=www.savouras.gr; logs=/var/log/httpd/domains/savouras.gr.log; samples=/xmlrpc.php
show less
Brute-Force
Web App Attack
๐ณ๐ฑ
debestelapp
2026-07-11 13:15:04
(5 days ago)
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 08:58:09
(5 days ago)
(mod_security) mod_security (id:240335) triggered by 182.11.129.215 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:240335) triggered by 182.11.129.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 04:58:04.288140 2026] [security2:error] [pid 7696:tid 7696] [client 182.11.129.215:23952] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 182.11.129.215 (+1 hits since last alert)|seabreezeculvert.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "seabreezeculvert.com"] [uri "/xmlrpc.php"] [unique_id "alIFnH_-ab9GkDLIX9BuWwAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-07-07 22:24:44
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot